[ILUG] SSH dictionary attacks.
usr.src.linux at gmail.com
Tue Aug 29 17:53:12 IST 2006
kevin lyda wrote:
> That's nice. But you're missing the point. What you've described is
> impossible mathematically.
Quit correct Kevin. The biggest upset to cryptography has always been
the emergence of collissions in the hashing algorithms, and they've
always been quite correctly dismissed as "meaningless", but now that
schemes exist for the generation of _meaningful_ collissions in both
MD5 and SHA1, the whole basis for trust, and trust paths / chains is
out the window.
If it relies on trust / trust chains, it can no longer be done, not
until the maths world come up with some new scheme.
> That said it would be nice if folks just gave up on this thread.
Think they all had.
> can only deliver facts and logic for so long. Eventually you have to
> just leave the person to (hopefully) learn things at some point in
> the future.
Like learning how not to feed trolls :-p
More information about the ILUG